Tag Archives: HISTORICAL Malware Sample – TIJ – Traffic Sample Indicators Analysis

HISTORICAL Malware Sample – TIJ – Traffic Sample Indicators Analysis

2013-02-03 21:49:49.176564 IP 8.8.8.8.53 > 172.16.253.130.53: 34738 1/0/0 A 174.139.45.210 (50) E..N[Y….%……….5.5.:……………siqiao.gnway.net…………..<….-. 2013-02-03 21:49:49.179485 IP 172.16.253.130.1067 > 174.139.45.210.80: Flags [S], seq 2948849307, win 64240, options [mss 1460,nop,nop,sackOK], length 0 E..0.C@…t…….-..+.P……..p…oc………. 2013-02-03 21:49:49.284041 IP 174.139.45.210.80 > 172.16.253.130.1067: Flags [R.], seq 2525759170, ack 2948849308, win 64240, length 0 E..([Z….Y…-……P.+……..P…………. 2013-02-03 21:49:49.358483 IP 4.2.2.2.53 > 172.16.253.130.53: 34738 1/0/0… Read More »

Share Button